← Back to Home

Alien Phone Service

I buy the Pixel cash at a shop, flash GrapheneOS, configure your digital bunker — and ship it to you. Four tiers, one goal: privacy from the very first boot.

Floating Pixel with GrapheneOS in space

Privacy from the First Boot

No Google account. No telemetry. Bootloader locked. Verified Boot active.

Four service tiers — from a clean flash to the fully configured Alien Phone Pro with Termux scripts and ebook bundle.

Standard
Clean system, you configure yourself
79 € + device price (on request) · shipping included
  • GrapheneOS (current, stable)
  • Bootloader locked
  • Auditor verification
  • OEM unlock disabled
  • Device bought with cash
  • No pre-configuration
  • No ebook
  • No email support
Request Standard →
Digital Bunker
Apps & settings for instant privacy
109 € + device price (on request) · shipping included
  • Everything from Standard
  • Auto-reboot 12h (kill switch)
  • Privacy widget configured
  • Tor Browser installed
  • Easy Notes + Organic Maps
  • Aegis + App Verifier
  • KeePassDX password manager
  • Email support (48h response)
  • No ebook
Request Bunker →
★ Recommended
Alien Phone
Digital Bunker + Handbook — complete
113 € + device price (on request) · shipping included Only €4 more than Digital Bunker
  • Everything from Digital Bunker
  • GrapheneOS Handbook (DE+EN)
  • EPUB · PDF · AZW3 · MOBI
  • 23 chapters, DRM-free
  • New book editions free
  • Email support (48h response)
  • No Termux scripts package
Request Alien Phone →
Alien Phone Pro
Alien Phone + Termux & Scripts Package
135 € + device price (on request) · shipping included
  • Everything from Alien Phone
  • Termux + 4 scripts ready
  • Bash aliases pre-configured
  • Termux guide (cheat sheet)
  • Email support (48h response)
Request Pro →

Custom configurations and special requests available on request — different apps, additional settings, specific setups? Just include it in your email.

Digital Bunker — What Gets Configured

Everything that can be set up without your credentials — privacy settings and carefully selected apps that work right out of the box.

Auto-Reboot 12h
Kill switch against attacks: after 12h of inactivity the device automatically switches to the encrypted Before-First-Unlock state. Native code debugging disabled.
Privacy & Permission Widget
The "Privacy and Permission Control" widget added to Quick Settings — see your privacy status at a glance and toggle camera, microphone, or location individually with a single tap, without navigating into settings.
Tor Browser
Pre-installed and ready. Anonymous browsing over the Tor network — no account, no tracking, no logging.
Easy Notes
Offline note-taking app — no account, no cloud, no telemetry. Notes stay on the device and nowhere else.
Organic Maps
Google Maps alternative based on OpenStreetMap. Offline maps, no account, no tracking. Works without mobile data.
Aegis Authenticator
Offline 2FA app — your TOTP codes stay on the device. Vault encryption enabled. You add your own accounts.
App Verifier
Checks installed apps against the GrapheneOS database of known, trusted signatures — detects tampered or fake APKs before they cause harm.
KeePassDX Password Manager
Offline password manager in KeePass format (.kdbx) — no account, no cloud, no forced sync. Compatible with KeePassXC on desktop. Vault stays on the device; you add your own passwords.

Not included — you configure yourself: VPN, Private DNS, user profile passwords, SeedVault backup destination, Bitcoin wallet, 2FA codes. Those are your keys — they belong in your hands, not mine.

Alien Phone Pro — Termux Scripts

In addition to everything from Alien Phone: Termux with four pre-installed Bash and Python scripts, pre-configured aliases, and a compact Termux guide — everything ready to use from the first boot.

FAQ — Terms Explained

What is the Privacy & Permission Control widget?
In the Quick Settings panel (pull down from the top), modern GrapheneOS versions include the "Privacy and Permission Control" widget. It shows your current privacy status at a glance — and lets you toggle camera, microphone, or location individually with a single tap, without navigating into settings. The widget is hidden by default and must be manually activated in the Quick Settings editor and moved to the top. I set it up and place it front and centre — instantly accessible from the first boot.
What is Auditor verification?
The Auditor app uses the Pixel's Titan M2 security chip to cryptographically prove: (1) The device is running genuine, unmodified GrapheneOS. (2) The bootloader is actually locked. (3) The system has not been tampered with since the last check. This is not a screenshot or soft claim — it is a hardware-backed attestation. I run the verification before shipping and include the result. You can repeat it yourself at any time or build a trust anchor.
What does "OEM unlock disabled" mean?
Installing GrapheneOS requires briefly unlocking the bootloader — that's technically unavoidable. After installation it is immediately re-locked, and additionally the "OEM unlocking" toggle in Developer Options is disabled. This prevents anyone with physical access to your device from unlocking the bootloader again and flashing a compromised system. On every boot, the Titan chip verifies that GrapheneOS is unmodified (Verified Boot). If something doesn't match: the device won't start — no exceptions.
Where do the installed apps come from?
Following a clear hierarchy depending on the app: Accrescent (GrapheneOS-native, signature-verified app store) takes priority — if an app is available there, it comes from there. Otherwise the app is fetched directly from the developer's official source via Obtainium — no middleman, no store-signature surprises. F-Droid is the third option when neither Accrescent nor Obtainium makes sense. For active Nostr users the Zap Store is also available on request. Which route is right for which app is explained in detail in the ebook (chapter on app stores).
Should I run Auditor again when the device arrives?
Optional — but recommended for high threat models. For most users this isn't necessary: I include the verification result and the device ships sealed. If you want maximum control or have an elevated security requirement, you can run Auditor on first boot and compare the fingerprint with the included proof — it cryptographically confirms the device arrived unmodified. A nice feature, not a requirement.

Supported Devices

GrapheneOS runs exclusively on Google Pixel. From Pixel 8 onwards: 7 years of security updates + Hardware Memory Tagging (MTE).

Model Support until (approx.) Recommendation
Pixel 10, 10 Pro, 10a 2032 – 2033 Latest Generation
Pixel 9, 9 Pro, 9a 2031 – 2032 Highly Recommended
Pixel 8, 8 Pro, 8a 2030 – 2031 Recommended
Pixel 7, 7 Pro, 7a 2027 – 2028 Short remaining lifespan

Beginner recommendation: Pixel 9a or 10a — best price-to-security ratio, 7 years of support, MTE active. No preferred model? Tell me your budget and I'll recommend.

Why is Pixel 6 not listed? GrapheneOS technically still supports it, but official update support ends October 2026 — within months of purchase you'd be without security updates. Not a sensible starting point anymore.

How It Works

  1. 1
    Email with your tier and model Subject: GrapheneOS-Service — desired tier + model or budget. I reply with the total price.
  2. 2
    Offer — you pay only after confirming Device price + tier fee, transparent total. No commitment before your confirmation.
  3. 3
    Payment via Bitcoin or fiat Lightning, onchain or Ko-fi. Memo format: GrapheneOS [Tier] [Model] — e.g. GrapheneOS Alien Phone Pixel 9a. QR codes and details on the payment page.
  4. 4
    Pixel bought with cash No online account, no data profile — cash purchase at an electronics retailer. Legal in Germany up to €9,999, no ID required.
  5. 5
    Flash + configuration (depending on tier) Install GrapheneOS, lock bootloader, Auditor verification. From Bunker and up: auto-reboot, privacy widget, apps (Tor Browser, Easy Notes, Organic Maps, Aegis, App Verifier). Pro tier: also Termux with all scripts. Approx. 2–5 hours.
  6. 6
    Shipping + ebook link (from Alien Phone) DHL, shipping included — delivery approx. 2 weeks. Packstation explicitly possible. From Alien Phone: personal download link for the ebook bundle via email. If anything comes up (e.g. device out of stock) I'll reach out beforehand. Currently shipping within Germany only. For international inquiries, feel free to email — I'll see what I can do.

Anonymity & Data Minimisation

Payment

QR codes + copy function: Payment page →

Legal & Disclaimer

No repair service. New devices only, purchased by me. Defective or used devices are not accepted.

Software "as is". Official, unmodified GrapheneOS from grapheneos.org. No warranty for compatibility with specific apps or banking services.

No support contract. Service ends with delivery. Happy to answer questions by email — without any obligation regarding response time.

Manufacturer warranty. The device is new (Google hardware warranty). Installing GrapheneOS voids the software warranty — this is the case with all custom ROMs.

Private service. Not a commercial offering. No right of withdrawal, no statutory warranty. Purchase at your own risk.

Privacy. I store only your delivery address and model request. No sharing with third parties.

No affiliation with the GrapheneOS project. I install GrapheneOS as an independent service. The GrapheneOS project does not offer an installation service and is not affiliated with this offer.

Get in Touch

Write to me — I'll reply with an offer

Choose your tier · Name your model (or budget) · Send an email.
I'll reply with the total price and details. You only pay after confirming.

Send Email → Subject: GrapheneOS-Service · Response usually within 24–48 h

What to include: Desired tier (Standard / Digital Bunker / Alien Phone / Pro) · Model or budget · Delivery address or Packstation · any questions. That's all.